Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/ujKXuWcq2Y2Wu0cHHbkt6Wwt0NU.roa
File: ujKXuWcq2Y2Wu0cHHbkt6Wwt0NU.roa (raw, json)
Hash identifier: ML1DpKw4shfJAv6y9n8PVL9XORx891sGt79g5OndRlQ=
Subject key identifier: BA:32:97:B9:67:2A:D9:8D:96:BB:47:07:1D:B9:2D:E9:6C:2D:D0:D5
Certificate issuer: /CN=5a68d699d1a9457c78acfbec004f98677aa4cc16
Certificate serial: 0183FB2CF81C10E58722CCE9B6577E7B1FF5
Authority key identifier: 5A:68:D6:99:D1:A9:45:7C:78:AC:FB:EC:00:4F:98:67:7A:A4:CC:16
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/ujKXuWcq2Y2Wu0cHHbkt6Wwt0NU.roa
Signing time: Fri 21 Oct 2022 15:32:51 +0000
ROA not before: Fri 21 Oct 2022 15:32:51 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 205734
IP address blocks: 88.205.16.0/23 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:83:fb:2c:f8:1c:10:e5:87:22:cc:e9:b6:57:7e:7b:1f:f5
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5a68d699d1a9457c78acfbec004f98677aa4cc16
Validity
Not Before: Oct 21 15:32:51 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=ba3297b9672ad98d96bb47071db92de96c2dd0d5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:8b:69:19:db:3b:5e:db:b4:af:b8:ac:55:4a:
62:d1:10:43:8d:a0:5c:06:9d:10:87:20:d4:85:9d:
d2:17:02:6d:85:91:42:d8:36:aa:6a:45:a4:44:b0:
4a:c6:98:33:08:29:bf:23:3b:86:ee:91:4f:24:bb:
cc:94:a5:d8:be:35:6b:85:e5:d8:24:5f:5b:df:76:
f6:1b:12:06:1d:8c:1e:ac:74:ae:36:5d:af:63:3f:
cd:ad:d2:ab:ce:8d:64:b0:11:f7:65:d9:2f:5e:48:
74:26:dd:c1:fc:de:0f:8d:6e:4e:31:42:c8:ae:49:
1b:57:92:e4:02:da:32:1e:09:84:b9:eb:70:29:9f:
95:ca:71:79:4b:37:ee:e5:00:88:a7:9f:01:7d:6b:
35:80:51:7a:91:e8:cd:ca:8a:80:1d:a4:50:4f:85:
09:74:ed:77:a9:84:49:b6:a7:8f:e0:56:73:67:ea:
e2:f1:fe:38:0d:3d:3f:39:a4:5d:f1:82:ae:f1:a6:
08:56:c1:7e:ea:27:5b:ca:b9:5a:26:9e:0d:c0:8b:
8b:7d:d7:c1:c0:a1:82:fc:9c:67:7d:85:42:d6:a2:
31:aa:0f:2e:97:04:b2:c7:0b:70:70:df:88:83:52:
4a:94:a1:4c:9e:f0:1f:0d:91:52:46:d5:39:ed:15:
c7:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BA:32:97:B9:67:2A:D9:8D:96:BB:47:07:1D:B9:2D:E9:6C:2D:D0:D5
X509v3 Authority Key Identifier:
keyid:5A:68:D6:99:D1:A9:45:7C:78:AC:FB:EC:00:4F:98:67:7A:A4:CC:16
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/ujKXuWcq2Y2Wu0cHHbkt6Wwt0NU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/29/e28ba6-aaaf-4d33-b8dc-0aee360b0ba4/1/WmjWmdGpRXx4rPvsAE-YZ3qkzBY.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
88.205.16.0/23
Signature Algorithm: sha256WithRSAEncryption
67:68:56:29:8f:e2:2f:9a:67:36:7f:ef:12:d7:05:0d:ac:14:
12:3f:93:a6:c7:84:3d:35:c3:46:eb:f9:91:8c:88:ae:5f:c2:
80:81:eb:39:64:a5:66:ce:34:22:44:c7:62:b4:4e:b8:3b:24:
f2:c7:9d:87:1b:1c:d8:38:21:b0:79:8e:01:aa:a2:68:05:21:
b6:6d:95:48:39:80:2d:32:55:e3:d0:44:05:23:13:6f:fb:53:
ab:c2:b4:46:ac:25:76:cc:1b:0a:e2:4e:e4:11:d2:b0:01:1e:
20:89:ba:14:81:39:8a:c4:a8:a3:8b:f3:9b:68:43:d5:c0:c5:
4f:8d:2c:07:0f:45:f8:51:03:26:b8:e1:ce:7e:fb:be:7a:db:
45:9a:af:88:c2:55:1c:92:b0:1a:2e:7e:89:da:0c:4e:04:68:
f7:47:4c:29:de:5f:2b:c7:1c:b4:9c:14:e6:a3:c7:b2:6d:15:
4f:4b:75:29:4a:d6:45:98:1e:72:bc:bd:11:75:fa:bf:61:66:
46:cd:92:ce:ac:a3:23:a9:0a:b8:e1:0a:b7:52:9f:f6:20:ce:
93:e7:39:61:1c:d7:05:22:29:c1:29:f4:5b:e8:e9:84:8b:60:
1e:ff:ab:65:28:2d:4d:95:23:16:4c:bf:93:5e:a8:1d:59:e7:
30:18:ab:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:49:30 2023 by rpki-client on console-ams.rpki-client.org